$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft File: ySTN5BVFl0tvV4MubGA7zIlm2eA.mft (raw, json) Hash identifier: LXAib1MpZbfs+STlojgnD2MWvFnJ8cyVOOc7FhBJsRg= Subject key identifier: 97:52:A3:BD:70:9C:01:8A:0A:9F:B1:23:B0:74:0F:18:96:DD:C5:CF Authority key identifier: C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 Certificate issuer: /CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Certificate serial: 0335 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft Manifest number: 11A1 Signing time: Fri 08 Aug 2025 17:55:25 +0000 Manifest this update: Fri 08 Aug 2025 17:55:24 +0000 Manifest next update: Fri 15 Aug 2025 17:55:24 +0000 Files and hashes: 1: ySTN5BVFl0tvV4MubGA7zIlm2eA.crl (hash: Qa7hWzsivU0vLJqcvGu5K3VXa4ppomkpbCxYoAs02d0=) 2: 2FBEB0B0D5B011EC90A8A031C4F9AE02.roa (hash: dTotqn1MA4iFciet41gKXuxTQQQVUzcSiuTmgAsBCPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 821 (0x335) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD, serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Validity Not Before: Aug 8 17:55:24 2025 GMT Not After : Aug 15 17:55:24 2025 GMT Subject: CN=68963a0d-7930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:0a:59:3c:67:99:7c:03:ab:06:b8:04:dc:61: 09:00:52:5c:48:34:1e:b5:b0:00:92:06:b0:85:85: fb:fa:14:e4:7c:bf:ab:00:d0:8c:0b:ad:db:89:b6: 92:3c:7b:62:69:43:20:90:2b:05:17:b7:2a:77:f8: a5:c3:8d:12:ea:4f:98:20:57:a9:3b:0b:c9:89:35: 54:14:1a:ae:da:b4:e3:74:8b:8a:48:7e:dd:1e:d8: 53:ef:24:49:7c:84:a4:b3:98:9d:ff:10:27:dd:9d: 36:75:07:96:f2:9d:23:ef:3d:e9:42:f0:7e:97:cd: a1:d5:11:07:80:d2:72:30:6d:38:7e:28:ea:ef:be: e2:bf:1a:d7:6a:11:e5:92:f9:d4:8f:51:92:17:d1: df:ca:92:e4:a6:3b:df:86:72:68:65:f3:a7:f3:a7: b0:71:73:1c:d0:6b:fa:f1:85:19:9c:8c:3c:33:df: 0e:07:89:e8:67:10:b1:09:31:28:7a:b5:45:0f:02: 0e:12:97:dd:b4:61:2b:c6:4e:da:b7:24:46:db:fb: b5:8d:94:e4:17:c2:91:61:26:7b:3d:55:03:18:d9: 2c:85:ec:74:d7:92:42:0f:03:55:98:93:56:3c:2d: 4f:f5:9b:4a:5d:69:e1:f8:4f:e2:25:02:28:85:16: 5e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:52:A3:BD:70:9C:01:8A:0A:9F:B1:23:B0:74:0F:18:96:DD:C5:CF X509v3 Authority Key Identifier: keyid:C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:41:78:cf:4f:89:44:2e:90:26:d7:db:1a:b5:35:fe:e5:1c: 72:45:a0:69:06:f8:72:2d:c9:3f:16:cc:e1:98:46:4e:0c:8e: 26:48:23:54:18:64:53:e7:1b:44:4e:d4:a8:de:c0:12:9f:f1: b8:62:32:ac:f2:d3:0b:87:26:fe:a1:ce:22:b4:7e:be:5c:93: d3:46:b0:4d:dd:e9:c5:1a:84:32:64:52:bb:a0:af:ad:28:7d: 96:b4:00:e7:fe:45:b9:61:2f:d3:62:22:a6:07:36:86:0c:0b: 67:22:8d:46:f6:d7:73:8b:2a:2c:2f:36:5d:be:da:d1:70:95: 39:e6:54:16:c2:70:1b:dd:b9:e6:e0:f9:11:38:5f:61:12:ea: b4:1b:a4:51:42:bf:96:97:45:c7:dd:2a:2c:f3:f0:9a:b5:e0: 17:8f:54:a1:43:e9:60:85:04:84:15:e6:36:aa:f9:33:18:2c: e6:28:7e:d0:16:8e:d6:25:e2:29:36:c4:08:ba:b5:04:ef:db: 32:7c:69:f7:04:09:38:83:db:93:85:f3:41:15:48:16:17:46: 5d:cc:73:32:21:19:1c:c4:66:5b:82:2b:dc:7b:b3:da:80:ee: d2:cc:bf:f0:8a:20:f6:e5:b7:fd:a5:ed:6e:8c:1d:26:9d:76: db:20:1a:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKEM5MjRDREU0MTU0NTk3NEI2RjU3ODMyRTZDNjAzQkND ODk2NkQ5RTAwHhcNMjUwODA4MTc1NTI0WhcNMjUwODE1MTc1NTI0WjAYMRYwFAYD VQQDEw02ODk2M2EwZC03OTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7QpZPGeZfAOrBrgE3GEJAFJcSDQetbAAkgawhYX7+hTkfL+rANCMC63bibaS PHtiaUMgkCsFF7cqd/ilw40S6k+YIFepOwvJiTVUFBqu2rTjdIuKSH7dHthT7yRJ fISks5id/xAn3Z02dQeW8p0j7z3pQvB+l82h1REHgNJyMG04fijq777ivxrXahHl kvnUj1GSF9HfypLkpjvfhnJoZfOn86ewcXMc0Gv68YUZnIw8M98OB4noZxCxCTEo erVFDwIOEpfdtGErxk7atyRG2/u1jZTkF8KRYSZ7PVUDGNkshex015JCDwNVmJNW PC1P9ZtKXWnh+E/iJQIohRZeIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJdSo71w nAGKCp+xI7B0DxiW3cXPMB8GA1UdIwQYMBaAFMkkzeQVRZdLb1eDLmxgO8yJZtng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmwwdHZWNE11YkdBN3pJbG0y ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTVE41QlZGbDB0dlY0TXViR0E3eklsbTJlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkRERC9CNEEyODM2MjlFMUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmww dHZWNE11YkdBN3pJbG0yZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAQXjPT4lELpAm19satTX+5RxyRaBpBvhyLck/FszhmEZODI4mSCNU GGRT5xtETtSo3sASn/G4YjKs8tMLhyb+oc4itH6+XJPTRrBN3enFGoQyZFK7oK+t KH2WtADn/kW5YS/TYiKmBzaGDAtnIo1G9tdziyosLzZdvtrRcJU55lQWwnAb3bnm 4PkROF9hEuq0G6RRQr+Wl0XH3Sos8/CateAXj1ShQ+lghQSEFeY2qvkzGCzmKH7Q Fo7WJeIpNsQIurUE79syfGn3BAk4g9uThfNBFUgWF0ZdzHMyIRkcxGZbgivce7Pa gO7SzL/wiiD25bf9pe1ujB0mnXbbIBqF -----END CERTIFICATE-----Generated at Sun Aug 10 18:17:13 2025 by rpki-client